Local SDK Injection

Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Overview

Use the Datadog Admission Controller to inject APM tracer libraries into Kubernetes workloads using pod-level annotations and labels.

The Datadog Agent uses the Kubernetes Admission Controller to intercept pod creation requests and inject an init container that installs the tracer library before the application starts. This method provides a manual, pod-level alternative to Single Step Instrumentation (SSI), which uses Helm or the Datadog Operator to configure instrumentation across your cluster.

Use this guide if:

  • You want to test library injection on a small number of services before rolling out SSI cluster-wide.
  • You’re not using Helm or the Datadog Operator, or prefer a lighter-weight integration method.
  • You want to control instrumentation directly in your pod specs, rather than through centralized configuration files.

Requirements

  • Kubernetes v1.14+
  • Datadog Cluster Agent:
    • v7.40+ for Java, Python, and Node.js
    • v7.44+ for .NET and Ruby
  • Datadog Admission Controller enabled (enabled by default in Helm chart v2.35.0+)

Step 1: Enable pod mutation

By default, Datadog Admission controller only mutates pods with the label admission.datadoghq.com/enabled: "true":

apiVersion: apps/v1
kind: Deployment
metadata:
  labels:
    # ...
spec:
  template:
    metadata:
      labels:
        admission.datadoghq.com/enabled: "true"

Alternatively, to mutate all pods without requiring the label, do one of the following:

  • Configure the Cluster Agent with the following setting:

    clusterAgent.admissionController.mutateUnlabelled: true

  • Set the environment variable:

    export DD_ADMISSION_CONTROLLER_MUTATE_UNLABELLED=true

For more details, see the Datadog Admission Controller documentation.

Step 2: Annotate pods for library injection

Specify tracer language and version

Use the following pod annotations to specify which language SDK to inject and which version to use:

LanguagePod annotation
Javaadmission.datadoghq.com/java-lib.version: "<CONTAINER IMAGE TAG>"
Node.jsadmission.datadoghq.com/js-lib.version: "<CONTAINER IMAGE TAG>"
Pythonadmission.datadoghq.com/python-lib.version: "<CONTAINER IMAGE TAG>"
.NETadmission.datadoghq.com/dotnet-lib.version: "<CONTAINER IMAGE TAG>"
Rubyadmission.datadoghq.com/ruby-lib.version: "<CONTAINER IMAGE TAG>"

Replace <CONTAINER IMAGE TAG> with the appropriate value.

For example:

apiVersion: apps/v1
kind: Deployment
metadata:
  labels:
    # (...)
spec:
  template:
    metadata:
      labels:
        admission.datadoghq.com/enabled: "true" 
      annotations:
        admission.datadoghq.com/java-lib.version: "v1.12.0"
    spec:
      containers:
        - # (...)

To view available library versions, see the tracer repositories for each language:

Note: If a container already includes a manually installed tracer, the injected version takes precedence at runtime.

Add Unified Service Tags

Use Unified Service Tags (USTs) to apply consistent tags across traces, metrics, and logs, making it easier to navigate and correlate your observability data. See the UST documentation to learn how to add USTs to your pods.

Step 3: Apply your changes and verify injection

After applying your updated pod spec, restart the deployment to trigger injection:

kubectl apply -f my-deployment.yaml

When injection is successful, the pod includes an init container named datadog-lib-init:

Pod details in Datadog with `datadog-lib-init` listed

Alternatively, check for datadog-lib-init on your pod using:

kubectl describe pod <pod-name>

You should also see trace data in the APM UI shortly after startup.